Nintendo utilizes a mix of symmetric cryptography and hashing algorithms to secure Amiibo data. The "Amiibo encryption key" is not actually a single key, but rather a set of two distinct cryptographic keys, often referred to in the hacking community as unfixed-info.bin and locked-secret.bin .
They cannot retroactively change the chips in the 200+ existing amiibo figures. Those figures contain data signed with the old key. Therefore, any future Nintendo console must include the old, leaked key to maintain backwards compatibility.
When searching for these files, accuracy is key. A common pitfall is downloading a file that is too large; a genuine key_retail.bin should be exactly . Larger files (such as 42kb versions) are often incorrect or corrupted and will fail to work with most writing software.
Handles the unique serialization and console-written data, such as saved game progress or leveled-up Super Smash Bros. fighters. amiibo encryption key
If you buy a device like the or the N2 Elite , these devices contain the key internally. The N2 Elite, for example, is a Bluetooth NFC dongle that can emulate up to 200 different amiibo simultaneously. When you press a button on your phone, it reconfigures its internal memory, calculates a new HMAC using the leaked key, and broadcasts a perfect imitation of Princess Zelda.
The development of new technologies, such as blockchain and advanced cryptography, may also play a role in shaping the future of Amiibo encryption. These technologies could enable more secure and transparent data exchange between Amiibo figures and game consoles, while also providing new opportunities for gamers and developers.
In 2017, a physical dongle called the "Amiiqo" (later rebranded as N2) popularized the concept of "flashing" amiibo. Users discovered that by holding the figurine over the dongle, the device could dump the encrypted data, decrypt it using the key, store the "bin file" on an SD card, and rewrite it to a blank coin. Nintendo utilizes a mix of symmetric cryptography and
The encryption keys themselves are Nintendo’s proprietary technology. Distributing them is illegal in many jurisdictions.
This section stores game-specific progress, such as Super Smash Bros. fighter levels or nicknames registered in System Settings Legal and Technical Considerations
The success of the reverse‑engineering effort was not an isolated achievement. It built upon extensive collaborative research documented in threads such as “ DIY Amiibo cards ” on GBAtemp. Community members shared findings about the NTAG215 chip, experimented with blank tags, and tested various encryption parameters. This open collaboration between researchers and hobbyists ultimately cracked a system that Nintendo had designed to be secure. Those figures contain data signed with the old key
Because the master key (seed) is static across all Amiibo and the signature mechanism was reverse-engineered, it became possible to generate valid signatures for any NTAG215 chip, provided the lock bits had not yet been set.
The breakthrough came in 2016, not through math, but through corporate failure. A group of reverse engineers discovered that Nintendo’s official "amiibo API" (used by game developers to interact with the figures) contained a fatal flaw. Specifically, a debugging tool or a development version of a game (rumored to be an early build of Animal Crossing: amiibo Festival ) left the encryption keys accessible in memory.
The reason is practical: backward compatibility. If Nintendo changed the encryption keys or upgraded to a completely different, highly secure NFC chip for newer figures, tens of millions of older Amiibo owned by consumers would instantly become incompatible with newer games.
The Amiibo encryption key is not a single string of data. The community discovered that the system actually relies on two separate key files, usually named: